Condition specifications are optional. They specify the conditions under which a Field is valid or is to be formatted. Condition specifications return a value of true or false. The field is formatted if and only if any specified Condition specification returns true.
| |
|---|
| CAnd(CondSpecification(…) …) | CAnd returns true if and only if its subordinate Condition specifications all return true. | | Specify two or more valid Condition specifications. |
|
| CExt(int_type GetSpecification(…) [mask] relationship_type value) | CExt returns true if the specified relationship of the data from the current Event record to the value specified is true. Example CExt(ULong GBase(8 4) LT 5) returns true if the unsigned 32-bit integer at offset 8 of the current Event record is less than 5. If Get specification is repetitive (for instance, a GTriplet specifying a triplet with more than one occurrence) only the first occurrence is compared. | | Specify any of the integer types from the table Integer Types except UCharUChar and UNiblUNibl. This operand is required. | | Specify any valid Get specification. If Get specification is repetitive (such as a GTriplet specifying a triplet with more than one occurrence), only the first occurrence is compared. | | Specifies a mask to be logically ANDed with the data in the record before the comparison. (The record itself is not modified.) Example CExt(GBase(8 4) X'400' EQ 0) returns true if the X'400' bit of the unsigned 32-bit integer at offset 8 of the current Event record is not set. Mask is optional; if it is omitted, then the data in the record is compared unmodified. | | Specify one of the Comparison Relationship Types from the preceding table. | | Specify the value to which the data in the record is to be compared in one of the two formats described as follows: | Code a number using any of the formats described under Signed Extended Numeric Format in BMC AMI Defender documentation. |
|---|
| Code a string of one to eight characters enclosed in single or double quotation marks. The string is converted to its EBCDIC binary representation and the resulting value is used for the comparison. Example Coding ‘A’ is equivalent to coding 193; coding V8 is equivalent to coding 58872 (X‘E5F8’). |
|---|
|
|
| COr(CondSpecification(…) …) | COr returns true if any of its subordinate Condition specifications return true. | | Specify two or more valid Condition specifications. |
|
| CSubTp(relationship_type subtype) CSubTp(IN|NI subtype ...) | CSubTp returns true if the specified relationship of the subtype of the current Event record to the value specified is true. For most SMF record types, the field checked by CSubTp is the true SMF subtype, a 16-bit field at offset 22 (X'16'). For SMF Type 80 records the subtype is the RACF Event number (only, without the qualifier). For ACF2 records, the subtype is the alphabetic subtype at offset 44 (X'2A'). For DB2 SMF records, the subtype is the IFCID number. Example CSubTp(GT 2) returns true if the subtype of the current SMF record is greater than 2. For SMF records formatted as without a subtype (byte 4 (SMFxxFLG, bit 1 = 0), the subtype is set to -1. | | Specify one of the Comparison Relationship Types from the preceding table. | | IN specifies that for the condition to be true the event subtype must be equal to one of the literal values coded; NI (not in) specifies that in order for the condition to be true the event subtype must not be equal to any of the literal values coded. IN and NI might be specified in upper, lower, or mixed case. You can specify any number of literals greater than zero. | | Specify an SMF record subtype in one of the two formats described as follows: | Code a number using any of the formats described under Signed Extended Numeric Format in BMC AMI Defender documentation . |
|---|
| Code a string of one or two characters enclosed in single or double quotation marks. The string is converted to its EBCDIC binary representation and the resulting value is used for the comparison. Example Coding ‘A’ is equivalent to coding 193; coding V8 is equivalent to coding 58872 (X‘E5F8’). |
|---|
|
|